From 3d28e2213f3b074eb598381b6b6ee33bd3051384 Mon Sep 17 00:00:00 2001
From: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>
Date: Tue, 2 Dec 2025 16:45:54 +0000
Subject: [PATCH] Dependabot: allow 10 open PRs for general updates (#19253)

---
 .github/dependabot.yml | 7 +++++++
 changelog.d/19253.misc | 1 +
 2 files changed, 8 insertions(+)
 create mode 100644 changelog.d/19253.misc

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 34484438c8..cfaa3c04e3 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,8 +1,12 @@
 version: 2
+# As dependabot is currently only run on a weekly basis, we raise the
+# open-pull-requests-limit to 10 (from the default of 5) to better ensure we
+# don't continuously grow a backlog of updates.
 updates:
   - # "pip" is the correct setting for poetry, per https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#package-ecosystem
     package-ecosystem: "pip"
     directory: "/"
+    open-pull-requests-limit: 10
     schedule:
       interval: "weekly"
     # Prevent pulling packages that were recently updated to help mitigate
@@ -18,6 +22,7 @@ updates:
 
   - package-ecosystem: "docker"
     directory: "/docker"
+    open-pull-requests-limit: 10
     schedule:
       interval: "weekly"
     cooldown:
@@ -25,6 +30,7 @@ updates:
 
   - package-ecosystem: "github-actions"
     directory: "/"
+    open-pull-requests-limit: 10
     schedule:
       interval: "weekly"
     cooldown:
@@ -32,6 +38,7 @@ updates:
 
   - package-ecosystem: "cargo"
     directory: "/"
+    open-pull-requests-limit: 10
     versioning-strategy: "lockfile-only"
     schedule:
       interval: "weekly"
diff --git a/changelog.d/19253.misc b/changelog.d/19253.misc
new file mode 100644
index 0000000000..1d45f936f6
--- /dev/null
+++ b/changelog.d/19253.misc
@@ -0,0 +1 @@
+Raise the limit for concurrently-open non-security @dependabot PRs from 5 to 10.
\ No newline at end of file